Cybersecurity Engineer - Cloud
Company: Gm Financial
Location: Dallas
Posted on: September 3, 2024
|
|
Job Description:
Overview:Opportunity to work in a hybrid model: Potential to
work 4 days onsite and 1 day remoteWhy GMF Cybersecurity?Our
Cybersecurity team is tasked with the security engineering,
regulatory response, third party risk, and incident response
capabilities necessary to secure GM Financial, the captive auto
finance subsidiary of General Motors. Reporting directly to the
CEO, our Cybersecurity team enjoys unprecedented support to deliver
the highest level of security capabilities using cutting edge
technologies and automating mundane tasks, allowing our teams to
focus on interesting and rewarding security work. As a part of GM,
youll have the opportunity to work on Cybersecurity projects across
financial services, automotive, manufacturing, high-tech, and
military industries. We are looking for team players who want the
freedom to innovate leading edge capabilities to join our growing
Cybersecurity team.Responsibilities:About the role:The
Cybersecurity Engineer is responsible for developing, deploying,
monitoring, tuning, evaluating, reporting, and maintaining systems
and procedures; and to identify and mitigate threats to the
corporate network, corporate assets and corporate users. This team
member will identify core requirements, design and implement
security technologies and work with stakeholders to perform ongoing
tuning and alerting on those technologies. Security technologies
may include but are not limited to: Data Loss Prevention (DLP),
Security Incident Event Management (SIEM), User Behavior Analytics,
Host Intrusion Prevention (HIPS) and Web/Email Gateway. This team
member will be responsible for both technical implementation of
systems and communication of security requirements to management
and security leadership. Additionally, this team member will be
responsible, as necessary, with assisting in investigations into
security threats.JOB DUTIESPrepares technical requirements and
standardsAssists in the identification, engineering and designing
of security technologies including, but not limited to: Security
Incident and Event Managers (SIEM) and threat intelligence
solutions, Web filtering (proxy, network AV), Intrusion Detection
and Prevention Systems (IDS/IPS), Endpoint security solutions, Data
Loss Prevention (DLP), Vulnerability Management (VM), Threat
Intelligence and Threat Detection, Web Application Firewalls (WAF),
Email Gateways, Breach Mitigation, Certificate Management, SSL
encryption and decryption, Identity Management, Cloud Security,
Database Security, Web Gateways, VPNs and FirewallsPerforms
analysis of system logs to identify unauthorized use or
accessCreates, analyzes and communicates security metrics to
leadershipParticipates in emergency response team activities for
responding to various security incidentsProvides in-depth support
for information security incidents including internal violations,
hacker attacks, virus and system outagesPrepares and updates
information procedures, standards and/or other technical
requirement documentsParticipates in periodic information systems
risk assessmentsDevelops detailed proposals and plans for new
information security systems that would enhance or enable new
capabilities for network or host systemsRecommends and evaluates
security tools to identify more efficient and effective security
measuresQualifications:What makes you a dream candidate?Local and
wide area networking concepts, principles and protocolsAdvanced
knowledge in Infrastructure design and managementWorking knowledge
of management processes such as personnel administration, planning
and budgetingStrong working knowledge of Intel platforms, iSeries
and pSeries serversAdvanced understanding of IT Service Management
(ITSM) best practices and processesExperience with UML Design
ToolsAdvanced knowledge of TCP/IP, OSI model and imp subnettingHigh
level understanding of technology infrastructure, security concepts
and platformsDemonstrated success in project managementAdvanced
knowledge of IBM pSeries hardware, operating systems and TSM backup
infrastructureAdvanced knowledge of the OSI model and security that
is associated with each layerUnderstanding of routing and switching
protocols as they relate to load balancingStrong understanding of
application layer protocols including HTTP, SSH, SSL and
DNSKnowledge and stay abreast on the latest security and privacy
legislation, regulations, advisories, alerts and
vulnerabilitiesKnowledge of IT security processes and controls as
well as IT infrastructure and networking technical knowledgeProven
expertise developing custom rule sets for tools to identify
specific attacks and exploits based on feedback and requirements
from business stakeholders including Compliance and Legal
CounselPossess understanding of cloud technologies and
conceptsExperience securing cloud deployments on common platforms
like Microsoft Azure, Amazon Web Services, or Google Cloud
PlatformExperience with deploying environments by defining
infrastructure as code (IaC)Experience with securing container
deployments, Kubernetes, managed Kubernetes PaaS services, Agile
environments, and DevOps environmentsExperience with managing
infrastructure through CI/CD pipelinesKnowledge of Linux operating
systems and microservice architectureBackground in scripting and
automation in widely used languages such as Python, Go, Ruby,
etcDetailed knowledge of declarative IaC approaches and immutable
infrastructure is a plusFamiliarity with Terraform is a
plusAdditional SkillsAbility to think strategically and make
collaborative decisionsAbility to apply structured analysis methods
to various types of data to establish trends, determine variability
and business impactCommunicates quickly, clearly, concisely,
appropriately and intelligentlyFoster open communication, speaks
with impact, listens to others and writes effectivelyExperience
with alternate management methods using SSH, serial connections and
the command-line interface TMSHAbility to effectively negotiate
with vendors on upgrades and acquisitionsEffective planning, time
management, negotiation and delegation skillsExpert level IT
security processes and controls knowledge as well as IT
infrastructure and networking technical knowledgeAbility to
approach problems with an open-mind and create new and innovative
ideas and methodsAdvanced technical writingExperience in
documentation tools such as Visio and Microsoft Office
productsAdvanced information security standards/frameworks (ie,
NIST Cybersecurity Framework, ISO 27001) skillsAdvanced experience
with Network and VLAN segmentationAbility to approach problems with
an open-mind, use existing information and resourcesCreative,
Innovative, problem-solving and maximizing your potential to solve
problems and improve methodsThink positively when faced with
obstacles, build on others ideas, think logically and
intuitivelyDetail oriented and strong analytical skillsExperience
and EducationMinimum of 1 to 5 years of experience in large and
complex business environments with a successful track record
working directly with senior level management preferredMinimum of 1
year experience within Cybersecurity domainBachelors Degree in
related field or equivalent work experience strongly
preferredLicensesCybersecurity related certifications strongly
preferredWhat We Offer: Generous benefits package available on day
one to include: 401K matching, bonding leave for new parents (12
weeks, 100% paid), tuition assistance, training, GM employee auto
discount, community service pay and nine company holidays.Our
Culture: Our team members define and shape our culture an
environment that welcomes innovative ideas, fosters integrity, and
creates a sense of community and belonging. Here we do more than
work we thrive.Compensation: Competitive pay and bonus
eligibilityWork Life Balance: Flexible hybrid work environment,
4-days a week in office in Irving, Texas#LI-SC1by Jobble
Keywords: Gm Financial, Dallas , Cybersecurity Engineer - Cloud, Engineering , Dallas, Texas
Click
here to apply!
|